Tuesday, October 7, 2014

I find it convenient to create a db_executor database role to give users the ability to execute stored procedures. This way you can look at the user's roles and just know they have the ability to execute stored procedures. Otherwise you have to go look at the permissions at the database level and most people forget or don't know to look there. You create the role as follows:

-- Create a db_executor roleCREATE ROLEdb_executor

-- Grant execute rights to the new roleGRANT EXECUTE TO db_executor
Then add the user to the role as follows, replacing <UserAccount> with the name of the user: